Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E0A6627E9BDF11ED989D3D35C4F9AE02.roa
File: E0A6627E9BDF11ED989D3D35C4F9AE02.roa (raw, json)
Hash identifier: 3M5pb6uVJSc0uQeDG+kX/cKBT+kFCsFgkGpqM2Gfq20=
Subject key identifier: 3C:A0:5A:EC:5D:AD:00:FD:C6:D3:B5:7D:F8:20:2F:C1:38:1F:52:9D
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0A7D
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E0A6627E9BDF11ED989D3D35C4F9AE02.roa
Signing time: Wed 25 Jan 2023 06:30:42 +0000
ROA not before: Wed 25 Jan 2023 06:30:41 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.0.0/24 maxlen: 24
115.167.1.0/24 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.4.0/24 maxlen: 24
115.167.72.0/22 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.104.0/22 maxlen: 24
115.167.112.0/22 maxlen: 24
115.167.126.0/24 maxlen: 24
115.167.127.0/24 maxlen: 24
175.110.96.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
2400:9560:1::/48 maxlen: 48
2400:9560:5::/48 maxlen: 48
2400:9560:9::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2685 (0xa7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 25 06:30:41 2023 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=63d0cc91-a531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7d:10:5b:2e:cc:7b:4a:60:4b:f4:e7:d6:72:
00:ee:a5:49:e3:16:0f:ab:25:b6:1f:3e:84:78:d6:
ef:81:62:f3:f0:7c:1f:43:96:f4:0c:39:7c:9a:15:
87:d8:91:a7:86:16:16:10:16:42:cf:df:c7:97:2e:
68:05:ec:16:02:ca:cd:93:2f:f4:87:9c:d1:d2:e2:
15:75:cd:d3:e4:05:b2:6e:41:17:05:71:0b:9c:d4:
d2:dc:13:e9:c5:a6:b3:90:15:ee:f7:99:74:b1:52:
31:b9:97:32:4d:8d:19:b6:ae:1a:7c:90:e0:06:af:
92:e4:01:31:0c:8a:2c:63:91:f2:51:32:2d:63:88:
09:c1:da:19:e0:2c:69:e7:0f:70:57:94:ef:ab:96:
b0:c5:97:47:29:2a:8d:5a:65:7a:ed:98:c1:b2:a9:
85:07:80:1b:86:44:87:97:14:54:b2:2e:f5:c4:5a:
8f:fc:4d:73:12:da:30:6e:78:f4:0d:3a:dd:d5:d3:
7e:b4:b9:57:35:d0:f5:b0:98:f3:56:a2:47:89:da:
c4:1f:20:a4:e4:d3:24:73:39:77:0c:43:45:24:20:
1c:61:88:d2:c2:66:ad:0f:b9:46:51:32:0c:eb:0e:
66:9e:7e:f0:8c:9e:fe:0f:0a:ae:d0:d3:f8:87:9d:
74:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A0:5A:EC:5D:AD:00:FD:C6:D3:B5:7D:F8:20:2F:C1:38:1F:52:9D
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E0A6627E9BDF11ED989D3D35C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.0.0-115.167.2.255
115.167.4.0/24
115.167.72.0/22
115.167.78.0/24
115.167.104.0/22
115.167.112.0/22
115.167.126.0/23
175.110.96.0/24
175.110.105.0/24
175.110.111.0/24
202.92.16.0/23
202.92.23.0-202.92.31.255
IPv6:
2400:9560:1::/48
2400:9560:5::/48
2400:9560:9::/48
Signature Algorithm: sha256WithRSAEncryption
4e:9d:2d:db:5d:d8:74:c2:c5:63:dd:2e:49:a0:de:f8:45:b0:
5b:95:8d:9f:f9:03:9e:97:db:ba:03:d5:36:c4:91:57:7a:b5:
7d:fd:80:88:9e:9c:aa:71:3c:5c:b6:4c:10:84:46:b3:91:de:
cd:13:53:74:e6:4a:7d:cb:31:6d:63:7b:88:cc:51:63:b7:d8:
64:5e:8c:55:29:55:f4:3a:be:f7:28:a2:7a:b8:21:58:b8:3a:
a4:b4:fb:c2:84:b8:69:75:fb:9d:8d:63:19:3d:db:56:ab:a7:
ed:ba:40:31:38:2e:0e:2e:e7:df:7e:be:e5:f7:22:31:92:04:
97:e2:02:e0:de:cc:43:94:6c:2e:1a:18:01:ec:34:3a:05:33:
85:5c:b4:f0:22:5a:52:c1:6e:96:d4:3d:14:64:4c:94:2e:c4:
c1:dc:af:13:e4:ab:ed:f3:dc:28:92:79:b5:6a:c5:4c:8b:18:
c5:a5:11:01:59:43:bf:c5:8a:07:53:6b:c1:34:36:23:27:6e:
09:ef:f4:8e:19:d3:ce:10:90:93:8a:2f:bb:c6:32:bf:3e:60:
86:ca:9c:5a:0e:1a:19:9a:f2:5d:e4:3b:ec:fd:00:c5:8a:04:
3e:cd:a1:18:fa:bb:77:30:dd:b4:3c:92:73:45:0e:7b:71:19:
20:d0:a6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-fra.rpki-client.org